Jump to content

Cre8asiteforums Internet Marketing
and Conversion Web Design


Photo

My Site Is Throwing Virus Warnings. :(


  • Please log in to reply
42 replies to this topic

#41 jonbey

jonbey

    Eyes Like Hawk Moderator

  • Moderators
  • 4427 posts

Posted 09 May 2012 - 02:50 PM

I read something the other day that pretty much said 99%* of all "hacks" are simply bots guessing passwords and people not deleting "admin" accounts when they install Wordpress.



*made up statistic because I cannot be bothered to find the source.

#42 bobbb

bobbb

    Sonic Boom Member

  • Hall Of Fame
  • 2152 posts

Posted 09 May 2012 - 03:02 PM

simply bots guessing passwords

Maybe for WP but cracking a good password (MineP@ssword1!) would be long by brute force but true about changing all defaults when installing something. Checking the logs for 401's would show activity.

I still say search for the initial cr[h]ack.

#43 Makis77

Makis77

    Ready To Fly Member

  • Members
  • 21 posts

Posted 09 June 2012 - 07:49 AM

I was a recent victim of an outdated timthump.php infection, "hacker" found the outdated file then got my WP password using the hole it created.
After that he got all the websites I have under the same IP and used the same password to log into the admin panel, fortunately I use different passwords on each of my websites except from one that got infected instantly.

After using backups for ALL of websites I went on and updated the timthumb file and create new admin, ftp, email and mysql passwords for ALL my websites.



RSS Feed

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users